PC / Tech. > LWN.net
Thursday December 20, 2018. 10:27 PM
The kernel's live-patching (KLP) mechanism can apply a wide variety of fixes to a running kernel but, at a first glance, the sort of highly intrusive changes needed to address vulnerabilities like Meltdown or L1TF would not seem like likely candidates for live patches. The...
Security updates have been issued by CentOS (ntp), Debian (openssl1.0), openSUSE (salt), Oracle (firefox, ghostscript, and ntp), Red Hat (ntp), and SUSE (bluez, git, libnettle, ovmf, and tiff).
The LWN.net Weekly Edition for December 20, 2018 is available.
Wednesday December 19, 2018. 10:56 PM
The December 20 LWN.net Weekly Edition is the final one for the year; as usual, we will be taking the last week of the year off for a brief rest. LWN, which is about to conclude its 21st year of publication, has had the time to build up some traditions, one of which is a...
Stable kernel 4.19.11 has been released with some important fixes; users should upgrade.
A year-old bug in Kubernetes was the topic of a talk given by Michelle Au and Jan Šafránek at KubeCon + CloudNativeCon North America, which was held mid-December in Seattle. In the talk, they looked at the details of the bug and the response from the Kubernetes product...
Security updates have been issued by CentOS (ghostscript), Fedora (ansible and wireshark), openSUSE (go1.11, pdns, and pdns-recursor), Oracle (firefox), Red Hat (java-1.8.0-ibm), Scientific Linux (firefox), and SUSE (crash, libqt5-qtbase, perl, and qemu).
Tuesday December 18, 2018. 09:01 PM
Back in late October, when we looked in on the Python governance question, which came about due to the resignation of Guido van Rossum, things seemed to be mostly set for a vote in late November. There were six Python Enhancement Proposals (PEPs) under consideration that...
HardenedBSD has released version 12 of its security-enhanced fork of FreeBSD. Improvements in this release include Non-Cross-DSO Control-Flow Integrity (CFI) for applications on amd64 and arm64; jailed bhyve; per-jail toggles for unprivileged process debugging; Spectre v2...
Security updates have been issued by Debian (libapache-mod-jk and sleuthkit), Fedora (kernel, kernel-headers, mbedtls, php, php-symfony, php-symfony3, php-symfony4, and wireshark), openSUSE (pdns, pdns-recursor, and salt), Oracle (firefox and ghostscript), Red Hat (ansible,...
Greg Kroah-Hartman has released stable kernel 4.4.168. As usual, there are important fixes and users should upgrade.
Monday December 17, 2018. 06:41 PM
Gustavo Padovan notes an important milestone in Linux graphics development: 'The dream finally came true in 2018 with the release of the Google Pixel 3, the first Android phone running with the mainline graphics stack. A feat that was deemed impossible 10 years ago is now a...
Stable kernel 3.18.130 has been released with important fixes; users should upgrade.
Security updates have been issued by Debian (php5, poppler, and samba), Fedora (firefox, mbedtls, nbdkit, pdns-recursor, php, php-symfony, php-symfony3, and php-symfony4), Gentoo (CouchDB, scala, and spamassassin), Mageia (firefox, libwpd, nss, and thunderbird), openSUSE...
Linus has released 4.20-rc7, saying: 'The plan remains the same: if everything continues normally, I'll release 4.20 just before christmas, and then just have a more leisurely merge window than normal.' On the stable side, 4.19.10, 4.14.89, and 4.9.146 are out with a new...
Friday December 14, 2018. 11:27 PM
Indirect function calls — calls to a function whose address is stored in a pointer variable — have never been blindingly fast, but the Spectre hardware vulnerabilities have made things far worse. The indirect branch predictor used to speed up indirect calls in the CPU...
Security updates have been issued by CentOS (ghostscript, git, java-1.7.0-openjdk, java-11-openjdk, kernel, NetworkManager, python-paramiko, ruby, sos-collector, thunderbird, and xorg-x11-server), Debian (gcc-4.9), and SUSE (amanda, ntfs-3g_ntfsprogs, and tiff).
Thursday December 13, 2018. 06:23 PM
The Linux kernel is generally seen as a poor fit for safety-critical systems; it was never designed to provide realtime response guarantees or to be certifiable for such uses. But the systems that can be used in such settings lack the features needed to support complex...
Greg Kroah-Hartman has released stable kernels 4.19.9, 4.14.88, 4.9.145, 4.4.167, and 3.18.129. They all contain important fixes and users should upgrade.
Security updates have been issued by Debian (firefox-esr), Fedora (singularity), openSUSE (compat-openssl098, cups, firefox, mozilla-nss, and xen), and SUSE (cups, exiv2, ghostscript, and git).
Jan, Fri 18 - 21:49 CET